ModSecurity is an efficient firewall for Apache web servers that is used to stop attacks towards web applications. It tracks the HTTP traffic to a specific site in real time and stops any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to accomplish that - as an example, trying to log in to a script administration area without success a few times sets off one rule, sending a request to execute a certain file which could result in accessing the site triggers a different rule, etc. ModSecurity is amongst the best firewalls out there and it will preserve even scripts which are not updated frequently because it can prevent attackers from using known exploits and security holes. Very thorough data about each and every intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the standard logs generated by the Apache server, so you could later analyze them and determine whether you need to take additional measures so as to boost the safety of your script-driven websites.
ModSecurity in Web Hosting
ModSecurity comes by default with all web hosting packages which we supply and it'll be switched on automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with only a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it will not do anything to stop them. The log for any of your sites shall feature elaborate info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules that we use are regularly updated and incorporate both commercial ones we get from a third-party security firm and custom ones our system admins include in case that they detect a new sort of attacks. In this way, the sites you host here will be much more secure with no action needed on your end.